FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-29 07:54:42 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
1020d401-6d2d-11eb-ab0b-001b217b3468Gitlab -- Multiple Vulnerabilities

Gitlab reports:

Improper Certificate Validation for Fortinet OTP

Denial of Service Attack on gitlab-shell

Resource exhaustion due to pending jobs

Confidential issue titles were exposed

Improper access control allowed demoted project members to access authored merge requests

Improper access control allowed unauthorized users to access analytic pages

Unauthenticated CI lint API may lead to information disclosure and SSRF

Prometheus integration in Gitlab may lead to SSRF


Discovery 2021-02-11
Entry 2021-02-12
gitlab-ce
ge 13.8.0 lt 13.8.4

ge 13.7.0 lt 13.7.7

ge 10.5 lt 13.6.7

https://about.gitlab.com/releases/2021/02/11/security-release-gitlab-13-8-4-released/